RE: Encrypt data - SQL Server 2000

• Previous message: Harlan Carvey: "Re: Microsoft Security (...how to reassure customers of)"
• In reply to: Eric McCarty: "RE: Encrypt data - SQL Server 2000"
• Next in thread: Gates, Gerald A (Jerry): "RE: Encrypt data - SQL Server 2000"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 22 Jan 2004 15:31:17 -0500 (EST)
To: focus-ms@securityfocus.com

> I suppose I've missed the intent of encryption within a SQL db. Why
> would you want to encrypt data inside a database?. First, if people can
> run queries against these tables and get results, you have incorrect
> database security. Second, if a malicious attacker uses a web app to run
> queries against the DB, the attacker would get the unencrypted output
> anyway as he/she is running in the context of an account that SHOULD
> have access.
>
> If we use the analogy of a book, if you can't get to the book, you can't
> read it. If the need comes about to send the text of the book across the
> wire, you should use SSL to encrypt it and decrypt it so people can't
> read it.
>

This gets down to a need to know issue. Can a DBA manage a payroll
database without knowing the CIO's salary? Yes. Does the DBA need to know
the CIO's salary? The organization would typically say no. Granted, you're
now relying on the application to protect you and if it's compromised the
data's probably sitting there on a silver platter, but this stops the
merely nosy DBA from running that query.

It's the same reason you'd consider dropping BUILTIN\Administrators from
the sysadmin role in SQL Server. Does the server admin necessarily need to
know what the database contains? Most cases that answer is no. Can you
really stop him? Again, most cases the answer is no. But it throws up a
legitimate barrier the server admin has to cross (and thereby break rules
in the process) which causes most people to think twice.

---------------------------------------------------------------------------
---------------------------------------------------------------------------

• Previous message: Harlan Carvey: "Re: Microsoft Security (...how to reassure customers of)"
• In reply to: Eric McCarty: "RE: Encrypt data - SQL Server 2000"
• Next in thread: Gates, Gerald A (Jerry): "RE: Encrypt data - SQL Server 2000"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Securing fields ... definitely encrypt it. ... I'm planning on storing credit card numbers in my SQL database for online ... (microsoft.public.dotnet.framework.aspnet) Re: Database encryption. ... > I am writing application that encrypt paradox type database with IDEA ... which is used to mark end of string. ... (sci.crypt) Re: 2 Keys decrypts same message ... > I don't want to encrypt each row twice (with a admin password ... Keeping the database secret. ... lots of disk storage and high speed LAN (Local Area ... (sci.crypt) Re: SQL Server 2000 / 2005 Encryption ... You require 3rd-party tools even when using the native SQL 2005 encryption ... to encrypt your SSL connections will be different. ... But you mentioned Excel cannot decrypt this information. ... Requests to the web services would connect to the database and invoke ... (microsoft.public.sqlserver.security) Re: SSN encryption ... >> We want to encrypt social security numbers in a database. ... address and SSN are always excluded. ... exposed if there were a breakdown in the other security precautions. ... (sci.crypt)